Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/FJvE384tRaRGDBq7vGQvteykYbs.roa
File: FJvE384tRaRGDBq7vGQvteykYbs.roa (raw, json)
Hash identifier: gDguLGwrB7/eQzB99YxOlyJwSYbnP4rwoNXFz1bLWKI=
Subject key identifier: 14:9B:C4:DF:CE:2D:45:A4:46:0C:1A:BB:BC:64:2F:B5:EC:A4:61:BB
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01912BE0C02E5FFC09ECAD8FC49707F5CE3A
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/FJvE384tRaRGDBq7vGQvteykYbs.roa
Signing time: Wed 07 Aug 2024 08:07:15 +0000
ROA not before: Wed 07 Aug 2024 08:07:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42473
IP address blocks: 37.235.3.0/24 maxlen: 24
37.235.4.0/24 maxlen: 24
37.235.5.0/24 maxlen: 24
37.252.224.0/19 maxlen: 32
37.252.226.0/24 maxlen: 24
37.252.228.0/24 maxlen: 32
37.252.234.0/24 maxlen: 24
37.252.243.0/24 maxlen: 24
37.252.244.0/24 maxlen: 24
37.252.251.0/24 maxlen: 24
37.252.253.0/24 maxlen: 24
45.132.61.0/24 maxlen: 24
45.132.62.0/23 maxlen: 24
94.16.98.0/24 maxlen: 24
94.16.100.0/24 maxlen: 24
94.16.125.0/24 maxlen: 24
94.16.126.0/24 maxlen: 24
144.208.192.0/18 maxlen: 32
144.208.204.0/24 maxlen: 24
144.208.205.0/24 maxlen: 24
144.208.206.0/24 maxlen: 24
144.208.207.0/24 maxlen: 24
144.208.212.0/22 maxlen: 32
144.208.216.0/24 maxlen: 24
144.208.217.0/24 maxlen: 24
144.208.219.0/24 maxlen: 24
144.208.221.0/24 maxlen: 24
144.208.222.0/24 maxlen: 24
144.208.223.0/24 maxlen: 24
144.208.224.0/24 maxlen: 24
144.208.225.0/24 maxlen: 24
144.208.226.0/24 maxlen: 24
144.208.228.0/24 maxlen: 24
144.208.229.0/24 maxlen: 24
144.208.230.0/24 maxlen: 24
144.208.231.0/24 maxlen: 24
144.208.232.0/24 maxlen: 24
144.208.233.0/24 maxlen: 24
144.208.235.0/24 maxlen: 24
144.208.236.0/24 maxlen: 24
144.208.237.0/24 maxlen: 24
144.208.238.0/24 maxlen: 24
144.208.240.0/24 maxlen: 24
144.208.241.0/24 maxlen: 24
144.208.242.0/24 maxlen: 24
144.208.244.0/24 maxlen: 24
144.208.254.0/24 maxlen: 24
176.123.54.0/23 maxlen: 23
178.255.152.0/21 maxlen: 32
185.2.176.0/22 maxlen: 32
185.2.176.0/24 maxlen: 24
185.50.232.0/23 maxlen: 23
185.50.235.0/24 maxlen: 24
185.81.206.0/24 maxlen: 24
185.81.209.0/24 maxlen: 24
185.116.96.0/24 maxlen: 24
185.116.97.0/24 maxlen: 24
185.116.98.0/24 maxlen: 24
185.116.99.0/24 maxlen: 24
185.228.148.0/22 maxlen: 22
188.65.72.0/21 maxlen: 32
188.172.192.0/18 maxlen: 32
188.172.208.0/24 maxlen: 24
188.172.230.0/23 maxlen: 23
188.172.247.0/24 maxlen: 24
188.172.249.0/24 maxlen: 24
188.172.254.0/24 maxlen: 24
193.33.114.0/23 maxlen: 32
194.1.206.0/24 maxlen: 32
213.227.160.0/19 maxlen: 32
213.227.184.0/24 maxlen: 24
217.146.0.0/19 maxlen: 24
217.146.6.0/24 maxlen: 24
217.146.7.0/24 maxlen: 24
2a00:11c0::/32 maxlen: 128
2a00:11c0:13::/48 maxlen: 48
2a00:11c0:19::/48 maxlen: 48
2a00:11c0:22::/48 maxlen: 48
2a00:11c0:24::/48 maxlen: 48
2a00:11c0:29::/48 maxlen: 48
2a00:11c0:40::/48 maxlen: 48
2a00:11c0:41::/48 maxlen: 48
2a00:11c0:42::/48 maxlen: 48
2a00:11c0:43::/48 maxlen: 48
2a00:11c0:46::/48 maxlen: 48
2a00:11c0:4a::/48 maxlen: 48
2a00:11c0:66::/48 maxlen: 48
2a00:11c0:6c::/48 maxlen: 48
2a00:11c0:79::/48 maxlen: 48
2a00:11c0:80::/48 maxlen: 48
2a00:11c0:83::/48 maxlen: 48
2a00:11c0:84::/48 maxlen: 48
2a00:11c0:86::/48 maxlen: 48
2a00:11c0:87::/48 maxlen: 48
2a00:11c0:88::/48 maxlen: 48
2a00:11c0:96::/48 maxlen: 48
2a00:11c0:97::/48 maxlen: 48
2a00:11c0:98::/48 maxlen: 48
2a00:11c0:99::/48 maxlen: 48
2a00:11c0:9a::/48 maxlen: 48
2a00:11c0:dc::/48 maxlen: 48
2a00:11c0:dd::/48 maxlen: 48
2a00:11c0:de::/48 maxlen: 48
2a00:11c0:1334::/48 maxlen: 48
2a00:11c0:1335::/48 maxlen: 48
2a00:11c0:1798::/48 maxlen: 48
2a00:11c0:179a::/48 maxlen: 48
2a00:11c0:179b::/48 maxlen: 48
2a00:11c0:9021::/48 maxlen: 48
2a01:aea0::/32 maxlen: 32
2a01:aea0::/40 maxlen: 40
2a01:aea0:dd1::/48 maxlen: 48
2a01:aea0:df1::/48 maxlen: 48
2a05:8900:28::/48 maxlen: 48
2a05:8900:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 08 Aug 2024 13:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2b:e0:c0:2e:5f:fc:09:ec:ad:8f:c4:97:07:f5:ce:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Aug 7 08:07:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=149bc4dfce2d45a4460c1abbbc642fb5eca461bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:18:98:d3:bb:6b:be:e7:7e:01:a2:27:b1:
45:0a:31:df:0b:18:f6:3b:2d:7a:17:c3:46:08:1b:
e6:68:51:e4:a1:83:12:79:73:0e:c2:62:29:71:34:
6b:f5:7f:e9:a7:44:b1:26:d8:36:53:88:89:5e:af:
01:14:01:70:d2:b6:03:b8:ff:ca:94:4e:b6:93:59:
62:7c:91:2b:34:79:7a:87:b0:65:49:64:f4:eb:1b:
40:70:a3:b5:e3:8a:0c:5e:d1:9f:54:f2:57:7a:80:
f2:0f:3f:d1:f4:7d:03:93:35:c7:05:90:cc:1b:af:
89:d6:e1:94:40:93:b4:1e:02:a7:33:31:5b:04:f9:
72:f9:8a:63:47:03:5b:af:62:f1:b4:17:e7:b0:3a:
cc:64:22:70:f3:ba:7a:29:23:44:db:4d:8f:b1:8c:
6c:a6:63:e4:75:01:ec:c7:dd:db:53:4d:16:dc:6f:
a6:7a:69:da:bf:d0:2b:73:17:77:1b:73:ba:d2:c0:
cd:e4:db:ab:de:63:93:48:d4:29:48:e7:5c:e6:fb:
0c:15:f6:ec:e5:ff:52:c0:74:45:24:0f:46:bb:51:
1e:c8:45:66:48:47:4e:1d:a5:05:b5:62:dd:bc:9a:
4d:99:30:7f:d3:47:94:2b:f8:06:09:43:c6:77:b3:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9B:C4:DF:CE:2D:45:A4:46:0C:1A:BB:BC:64:2F:B5:EC:A4:61:BB
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/FJvE384tRaRGDBq7vGQvteykYbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.235.3.0-37.235.5.255
37.252.224.0/19
45.132.61.0-45.132.63.255
94.16.98.0/24
94.16.100.0/24
94.16.125.0-94.16.126.255
144.208.192.0/18
176.123.54.0/23
178.255.152.0/21
185.2.176.0/22
185.50.232.0/23
185.50.235.0/24
185.81.206.0/24
185.81.209.0/24
185.116.96.0/22
185.228.148.0/22
188.65.72.0/21
188.172.192.0/18
193.33.114.0/23
194.1.206.0/24
213.227.160.0/19
217.146.0.0/19
IPv6:
2a00:11c0::/32
2a01:aea0::/32
2a05:8900:28::/48
2a05:8900:36::/48
Signature Algorithm: sha256WithRSAEncryption
83:d0:46:55:dd:9a:6d:2d:7a:d6:ce:aa:02:77:01:f4:f3:c1:
c6:6f:1e:f1:60:6c:02:3d:24:ca:c6:57:d2:ad:30:a9:86:b1:
5a:34:91:db:bd:ea:c6:30:23:51:ae:8b:56:56:ec:e3:10:1c:
0a:6f:1f:ee:d3:90:88:0d:bc:2a:fd:c9:65:f1:3b:bc:b4:fd:
72:61:23:8d:a5:49:a3:76:d3:7d:81:da:40:97:c3:7d:43:ad:
ad:b6:81:0d:02:39:5b:c3:7f:af:b8:82:60:64:77:a7:4e:22:
a5:2c:d4:47:3d:b1:32:f7:f0:e7:97:5f:0a:dd:71:40:ae:60:
dd:a2:75:e7:1b:de:99:bb:65:e3:67:ec:ca:36:25:3c:8c:0d:
dc:45:1a:ec:1a:fb:d6:3f:c0:44:b6:05:07:64:fd:3d:d1:ea:
b7:15:1b:aa:76:13:b5:4e:e4:ea:3a:b2:04:27:bb:2e:8d:e1:
3d:da:9b:db:05:5f:d0:48:59:77:81:6f:86:e0:2b:f3:db:cc:
d3:72:be:bf:79:ef:7e:9e:26:42:d3:9d:b6:ba:89:14:a5:89:
71:f4:17:3c:84:3a:c6:eb:74:9d:56:d6:6b:58:12:01:3d:76:
b1:a8:72:1d:06:dc:1c:53:b4:be:ac:6c:ac:51:10:ae:82:64:
72:ad:92:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 15:19:00 2024 by rpki-client on console-ams.rpki-client.org